[
https://issues.apache.org/jira/browse/EXTCDI-59?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Gerhard Petracek reopened EXTCDI-59:
------------------------------------
Assignee: Gerhard Petracek
> @Secured for secured actions and beans
> --------------------------------------
>
> Key: EXTCDI-59
> URL: https://issues.apache.org/jira/browse/EXTCDI-59
> Project: MyFaces CODI
> Issue Type: New Feature
> Components: Core, JEE-JSF12-Module, JEE-JSF20-Module
> Reporter: Gerhard Petracek
> Assignee: Gerhard Petracek
> Fix For: 0.9.0
>
>
> via an interceptor it should be possible to create custom AccessDecisionVoter
> impelmentation/s which check/s the permission to the target method.
> example 1:
> @Named
> @RequestScoped
> public class SecuredPage1
> {
> @Secured(LoginVoter.class)
> public String order()
> {
> //...
> }
> }
> register a default error page via the view-config approach:
> @Page
> public class Login implements DefaultErrorPage
> {
> }
> ... leads to /login.xhtml as error-page.
> example 2 (class level usage and special error page for this bean):
> @Named
> @RequestScoped
> @Secured(value = LoginVoter.class, errorPage=SpecialErrorPage.class)
> public class SecuredPage2
> {
> public String order()
> {
> //...
> }
> }
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
